CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
The Hacker News
AI-Generated Browser Ransomware Abuses Chromium API on Windows and Android
Cybersecurity researchers have flagged a new malware artifact generated using DeepSeek that constructed a novel attack path combining "unrealistic browser-malware concepts with a real browser capabili ...
-
security.nl
WinRAR-lek laat aanvaller code op systeem van gebruikers uitvoeren
Een beveiligingslek in WinRAR maakt het mogelijk voor aanvallers om code op het systeem van gebruikers uit te voeren. De kwetsbaarheid is verholpen in versie 7.23 van de populaire archiveringssoftware ...
-
cert.pl
Vulnerabilities in MyComplianceOffice MCO software
Vulnerabilities in MyComplianceOffice MCO software CVE ID CVE-2026-53902 Publication date 01 July 2026 Vendor MyComplianceOffice Product MCO Vulnerable versions 25.3.3.1 Vulnerability type (CWE) Incor ...
-
The Hacker News
Citrix Patches Six NetScaler Flaws Allowing File Read and Denial-of-Service
Citrix on Tuesday released security updates to address multiple flaws in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (formerly Citrix Gateway) that could be exploited by an attacker to f ...
-
The Hacker News
RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS
A new two-stage malware family called RustDuck is hijacking home routers, IP cameras, Android boxes, and poorly secured servers, then stitching them into a network built to knock websites and online s ...
-
TheCyberThrone
CVE-2026-48558: SimpleHelp OIDC Flaw Added to KEV
Authentication systems are built on trust.But when that trust is broken at the protocol layer, the entire security model collapses.That is exactly what happened with CVE-2026-48558, a critical vulnera ...
-
The Hacker News
Langflow RCE Exploited to Deploy Monero Miner on Exposed AI App Endpoints
Threat actors are continuing to exploit a critical Langflow vulnerability as part of fresh attacks designed to deliver a Monero cryptocurrency miner. The activity has been found to weaponize CVE-2026- ...
-
cert.pl
Vulnerabilities in KTM System e-BOK software
Vulnerabilities in KTM System e-BOK software CVE ID CVE-2026-35095 Publication date 30 June 2026 Vendor KTM System Product e-BOK Vulnerable versions All before 06.2026 Vulnerability type (CWE) Session ...
-
cert.pl
Vulnerabilities in fzf software
Vulnerabilities in fzf software CVE ID CVE-2026-53432 Publication date 30 June 2026 Vendor fzf Product fzf Vulnerable versions All before 0.73.1 Vulnerability type (CWE) Integer Overflow or Wraparound ...
-
cert.pl
Vulnerabilities in Redeight CMS software
Vulnerabilities in Redeight CMS software CVE ID CVE-2026-53690 Publication date 30 June 2026 Vendor Redeight Product Redeight CMS Vulnerable versions 1.0 Vulnerability type (CWE) Improper Neutralizati ...